Multiple cross-site scripting (XSS) vulnerabilities in jforum.page in JForum 2.1.9 allow remote malicious users to inject arbitrary web script or HTML via the (1) action, (2) match_type, (3) sort_by, or (4) start parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jforum jforum 2.1.9 |